Back to glossary

Data Exfiltration

Data exfiltration is the unauthorized transfer of data from a computer or other device. Threat actors typically exfiltrate data after a breach, while malicious insiders (also known as insider threats) may also gain unauthorized access to the data. Data thieves can exfiltrate data manually if they have physical access to it or, more commonly, by using malicious software to remotely automate the process.

To prevent data exfiltration, organizations should require strong passwords and multi-factor authentication (MFA), continuously monitor outbound data transfers, enforce strict access controls, establish threat detection procedures and response strategies, encrypt sensitive data, and employ data loss prevention (DLP) technologies. Employee training to recognize social engineering and phishing attacks can also reduce the risk of data exfiltration.

Stay in the Know

Get VikingCloud Resources, News & Views delivered straight to your inbox.

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

Blogs

Stay up-to-date on the latest happenings in Cybersecurity and PCI Compliance.

Jul 16, 2026
Blog
HIPAA Compliance
Risk Management
Blog
Jul 16, 2026

What is a HIPAA Risk Assessment? Definition, Steps, and Requirements

Learn More
Jul 13, 2026
Blog
HIPAA Compliance
Blog
Jul 13, 2026

What the HIPAA Security Rule Means for Business Associates

Learn More
Jul 8, 2026
Blog
No items found.
Blog
Jul 8, 2026

225 Cybersecurity Stats and Facts for 2026

Learn More